Recommended update for hplip

Announcement ID:	SUSE-RU-2025:0270-1
Release Date:	2025-01-28T17:43:04Z
Rating:	important
References:	bsc#1209401 bsc#1214399 bsc#1225777 bsc#1234745 jsc#PED-11978 jsc#PED-5846
Cross-References:	CVE-2020-6923
CVSS scores:	CVE-2020-6923 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2020-6923 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products:	Basesystem Module 15-SP6 Desktop Applications Module 15-SP6 openSUSE Leap 15.6 SUSE Linux Enterprise Desktop 15 SP6 SUSE Linux Enterprise Real Time 15 SP6 SUSE Linux Enterprise Server 15 SP6 SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves one vulnerability, contains two features and has three fixes can now be installed.

Description:

This update for hplip fixes the following issues:

This update for hplip fixes the following issues:

Update to hplip 3.24.4 (jsc#PED-5846)

• Added support for new printers:
• HP OfficeJet 8120 All-in-One series
• HP OfficeJet Pro 8120 All-in-One series
• HP OfficeJet 8130 All-in-One series
• HP OfficeJet Pro 8130 All-in-One series
• HP OfficeJet Pro 9720 Series
• HP OfficeJet Pro 9730 Series
• HP OfficeJet Pro 9130b series
• HP OfficeJet Pro 9120b series
• HP OfficeJet Pro 9110b series
• HP Color LaserJet Enterprise Flow MFP X58045z
• HP Color LaserJet Enterprise Flow MFP X58045zs
• HP Color LaserJet Enterprise MFP X58045dn 
• HP Color LaserJet Enterprise MFP X58045
• HP LaserJet Pro P1106 plus

• HP LaserJet Pro P1108 plus

• Bug fixes:

• hpmud: sanitize printer serial number (bsc#1209401, lp#2012262)

• hppsfilter: booklet printing: change insecure fixed /tmp file paths (bsc#1214399)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• openSUSE Leap 15.6
  zypper in -t patch SUSE-2025-270=1 openSUSE-SLE-15.6-2025-270=1
• Basesystem Module 15-SP6
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-270=1
• Desktop Applications Module 15-SP6
  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2025-270=1

Package List:

• openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
  • hplip-scan-utils-3.24.4-150600.4.6.1
  • hplip-3.24.4-150600.4.6.1
  • hplip-devel-3.24.4-150600.4.6.1
  • hplip-sane-debuginfo-3.24.4-150600.4.6.1
  • hplip-scan-utils-debuginfo-3.24.4-150600.4.6.1
  • hplip-hpijs-debuginfo-3.24.4-150600.4.6.1
  • hplip-hpijs-3.24.4-150600.4.6.1
  • hplip-udev-rules-3.24.4-150600.4.6.1
  • hplip-debuginfo-3.24.4-150600.4.6.1
  • hplip-debugsource-3.24.4-150600.4.6.1
  • hplip-sane-3.24.4-150600.4.6.1
• Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
  • hplip-devel-3.24.4-150600.4.6.1
  • hplip-sane-debuginfo-3.24.4-150600.4.6.1
  • hplip-hpijs-debuginfo-3.24.4-150600.4.6.1
  • hplip-hpijs-3.24.4-150600.4.6.1
  • hplip-udev-rules-3.24.4-150600.4.6.1
  • hplip-debuginfo-3.24.4-150600.4.6.1
  • hplip-debugsource-3.24.4-150600.4.6.1
  • hplip-sane-3.24.4-150600.4.6.1
• Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
  • hplip-debugsource-3.24.4-150600.4.6.1
  • hplip-3.24.4-150600.4.6.1
  • hplip-debuginfo-3.24.4-150600.4.6.1

References:

• https://www.suse.com/security/cve/CVE-2020-6923.html
• https://bugzilla.suse.com/show_bug.cgi?id=1209401
• https://bugzilla.suse.com/show_bug.cgi?id=1214399
• https://bugzilla.suse.com/show_bug.cgi?id=1225777
• https://bugzilla.suse.com/show_bug.cgi?id=1234745
• https://jira.suse.com/browse/PED-11978
• https://jira.suse.com/browse/PED-5846